iiab/roles/samba at 3c04ba6fb0246adc60cf4ffcdc5367a64f4c65bf - external/iiab

mirror of https://github.com/iiab/iiab.git synced 2025-02-13 19:52:06 +00:00

History

A Holt 585b0bacf9 Install apt pkg 'smbclient' instead of virtual pkg 'samba-client'		2022-04-13 14:55:49 -04:00
..
defaults	Update main.yml	2019-03-05 14:06:48 -05:00
handlers	initial checkin -- May 27, 2017	2017-05-27 11:09:50 -07:00
tasks	Install apt pkg 'smbclient' instead of virtual pkg 'samba-client'	2022-04-13 14:55:49 -04:00
templates	initial checkin -- May 27, 2017	2017-05-27 11:09:50 -07:00
README.rst	#2923 samba/README.rst: Use relative (instead of absolute) link to smb.conf.j2	2021-08-23 11:51:54 -04:00

README.rst

Samba README
============

Do you want your Internet-in-a-Box (IIAB) to act as a file server for your classroom or school?

If `Samba <https://www.samba.org/samba/docs/>`_ is installed and enabled as part of your IIAB's `/etc/iiab/local_vars.yml <https://wiki.iiab.io/go/FAQ#What_is_local_vars.yml_and_how_do_I_customize_it.3F>`_, your IIAB server can advertise a shared "public" folder, available to Windows PC's and laptops on your network.

Default Permissions
-------------------

- Users may read and write to the "public" shared folder.
- They are forced to store their files as a user who has no ability to log on to the server.
- The user, with no ability to log on, has a password which is very difficult to guess e.g. ``verylong%and$hard^to@guess``

Security
--------

**It's critical you understand Samba security,** so as not to endanger your students and community:

- `https://en.wikipedia.org/wiki/Samba_(software)#Security <https://en.wikipedia.org/wiki/Samba_(software)#Security>`_
- https://ubuntu.com/server/docs/samba-securing

Please review the default `/etc/samba/smb.conf <templates/smb.conf.j2>`_ file, and revise it appropriately.

Please also review your overall `IIAB Security <http://wiki.laptop.org/go/IIAB/Security>`_.